Barney's Blog

Blog archive

No Surprise: Exposed XP Flaw Now Exploited

On Monday I told you how Google publicly disclosed an XP Help flaw that had yet to be patched. As of then, there were no reported attacks, but I wondered aloud how long it would take to exploit this now well-known and understood hole.

It didn't take long -- Microsoft now says hackers are now going after the flaw which allows for remote code execution.

Some of you were on Google's side, arguing that Microsoft has no real motivation to fix a hole if no one knows about it. Others believe it is irresponsible to tell hackers how they attack our software. The latter group seems to have some pretty good evidence on their side.

What is your take? Let me know at [email protected]

Posted by Doug Barney on 06/18/2010 at 1:17 PM


Featured

  • Microsoft Changes Privacy Platform Name to SmartNoise

    Microsoft Research has changed the name of its "differential privacy" platform from "WhiteNoise" to "SmartNoise," according to a Wednesday announcement.

  • Why Restarting a Failed SCVMM Job Might Be a Bad Idea

    Occasionally, restarting a failed System Center Virtual Machine Manager job can leave your virtualization infrastructure in an unknown state. Here's how to avoid that.

  • Microsoft Starts Delivery of Latest Windows 10 Feature Update to Surface Hub 2S Devices

    Microsoft last week announced that users of Surface Hub 2S videoconference screens soon will be getting the latest Windows 10 feature update.

  • Microsoft Joins MEF To Bolster Azure for Operators Services

    Microsoft has joined the MEF, a nonprofit industry association that aims to standardize various software-defined networking (SDN) technologies used by service providers and enterprises.

comments powered by Disqus